Online Access Free ISACA.CISM.v2024-04-24.q336 Practice Test (Page 45)

CISM Exam Question 216

An information security manager was informed that a planned penetration test could potentially disrupt some services. Which of the following should be the FIRST course of action?

A.Accept the risk and document it in the risk register.

B.Reschedule the activity during an approved maintenance window.

C.Estimate the impact and inform the business owner.

D.Ensure the service owner is available during the penetration test.

CISM Exam Question 217

A test plan to validate the security controls of a new system should be developed during which phase of the project?

A.Testing

B.Initiation

C.Design

D.Development

CISM Exam Question 218

Which of the following metrics is the BEST indicator of an abuse of the change management process that could compromise information security?

A.Small number of change request

B.Large percentage decrease in monthly change requests

C.Percentage of changes that include post-approval supplemental add-ons

D.High ratio of lines of code changed to total lines of code

CISM Exam Question 219

The PRIMARY goal of the eradication phase in an incident response process is to:

A.provide effective triage and containment of the incident.

B.remove the threat and restore affected systems.

C.obtain forensic evidence from the affected system.

D.maintain a strict chain of custody,

CISM Exam Question 220

Which of the following would generally have the GREATEST negative impact on an organization?

A.Theft of computer software

B.Interruption of utility services

C.Loss of customer confidence

D.Internal fraud resulting in monetary loss

Other Version: 1888ISACA.CISM.v2024-10-14.q528; 606ISACA.CISM.v2024-07-14.q167; 1262ISACA.CISM.v2023-09-14.q160; 1233ISACA.CISM.v2023-09-09.q151; 1232ISACA.CISM.v2023-08-22.q180; 1006ISACA.CISM.v2023-07-28.q152; 1045ISACA.CISM.v2023-05-16.q111; 1081ISACA.CISM.v2023-05-10.q114; 1025ISACA.CISM.v2023-03-07.q88; 4392ISACA.CISM.v2022-09-16.q374; 8277ISACA.CISM.v2022-08-01.q522; 56ISACA.Ipassleader.CISM.v2022-06-09.by.josephine.1215q.pdf; 11789ISACA.CISM.v2022-04-15.q999; 14837ISACA.CISM.v2021-10-30.q999

Latest Upload: 288ISACA.CGEIT.v2025-09-19.q537; 153Fortinet.FCP_FWF_AD-7.4.v2025-09-18.q62; 154Scrum.SAFe-Practitioner.v2025-09-18.q63; 146Workday.Workday-Prism-Analytics.v2025-09-17.q17; 131Oracle.1Z0-1055-24.v2025-09-17.q28; 129Oracle.1Z1-182.v2025-09-17.q32; 244Nutanix.NCP-US-6.5.v2025-09-16.q73; 265Oracle.1z0-071.v2025-09-16.q232; 203Oracle.1Z1-922.v2025-09-16.q125; 325CyberArk.PAM-CDE-RECERT.v2025-09-15.q100

CISM Exam Question 216

CISM Exam Question 217

CISM Exam Question 218

CISM Exam Question 219

CISM Exam Question 220

Download PDF File